Hillstone Networks, a provider of network security solutions headquartered in Sunnyvale, California, has unveiled CloudHive – a cloud security solution that leverages micro-segmentation to protect networks beyond the perimeter down to every virtual machine in cloud deployments.
Hillstone CloudHive provides visibility and protection to all virtual machines, as well as East-West traffic. The solution would reduce risk and operational costs, and enable secure cloud services at scale.
Key Features of Hillstone CloudHive would include:
- Live Traffic Visibility – All virtual machine access points can be monitored to provide visibility and control of traffic, applications and attacks inter-VM; which is the cornerstone for enabling East-West traffic control and protection. VM topology, traffic insight, application identification, as well as comprehensive log features allow Cloud Service Providers (CSPs) to meet compliance and security audit requirements.
- Reduce Attack Surface – Each CloudHive Virtual Security Service Module (vSSM) is deployed on a physical server, enabling micro-segmentation for inter-VM communication. East-West traffic is secured with L2-L7 security services, including firewall features such as policy control and session limits; advanced security features such as Intrusion Prevention System (IPS) and Attack Defense (AD); as well as fine-grained application control. Real-time mitigation also blocks, impedes or quarantines active attacks.
- Scale Security Through Active Orchestration – On-demand security services can be applied to any and all new workloads and VMs through the scalability of vSSM. The deployment of vSOM enables unified security policy configuration for each VM. CloudHive supports vMotion to ensure security services persist in the event the VM moves.
- Improve Efficiency – CloudHive Layer 2 deployment does not impact existing network topology. It would minimize deployment and configuration overhead, without business impact or network interruption. In addition, the “ease of management” advantage of a single appliance would reduce operational errors and improve overall efficiency. CloudHive security services do not need to update to VMware’s NSX.
“Security in the cloud remains a key concern for organizations and is a major reason some applications and workloads have not yet moved to the cloud,” said Tim Liu, CTO and founder, Hillstone Networks. “With Hillstone Networks’ CloudHive technology, organizations can now fully realize secure cloud services at scale through full visibility, control, and security across networks, down to the virtual machines.”